https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175944#M32142 <P>More information is needed please:</P> <P>- version &amp; jumbo</P> <P>- https inspection enabled?</P> <P>- browser and is QUIC traffic allowed?</P> <P>If using layers &amp; identity awareness upgrading to a newer JHF is likely recommended to avoid:&nbsp; sk176283</P> <P>&nbsp;</P> Thu, 23 Mar 2023 23:20:36 GMT Chris_Atkinson 2023-03-23T23:20:36Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175941#M32141 <P>We used VSX configuration. We blocked Adult category in top rule. But the adult content was not blocked.&nbsp;</P><P>Category wise blocking was not working in VSX. please support</P> Thu, 23 Mar 2023 15:56:53 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175941#M32141 Loveson_Fredric 2023-03-23T15:56:53Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175944#M32142 <P>More information is needed please:</P> <P>- version &amp; jumbo</P> <P>- https inspection enabled?</P> <P>- browser and is QUIC traffic allowed?</P> <P>If using layers &amp; identity awareness upgrading to a newer JHF is likely recommended to avoid:&nbsp; sk176283</P> <P>&nbsp;</P> Thu, 23 Mar 2023 23:20:36 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175944#M32142 Chris_Atkinson 2023-03-23T23:20:36Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175959#M32146 <P>please find the below detail.</P><P>- version &amp; jumbo&nbsp;<STRONG>OS: R81.10 Hotfix: Check_Point_R81_10_JUMBO_HF_Take 78</STRONG></P><P>- https inspection enabled? <STRONG>yes&nbsp;</STRONG></P><P>- browser and is QUIC traffic allowed? <STRONG>we allowed Http and Https only</STRONG></P> Thu, 23 Mar 2023 17:10:25 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175959#M32146 Loveson_Fredric 2023-03-23T17:10:25Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175963#M32147 <P>Hey&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/12481">@Loveson_Fredric</a>&nbsp;</P> <P>I think it would really help us if you could post a screencap of the rule involved and what is the actual site you are referencing. To verify the category, please check below, to make sure its 100% correct.</P> <P>Andy</P> <P><A href="https://urlcat.checkpoint.com/urlcat/main.htm" target="_blank" rel="noopener">https://urlcat.checkpoint.com/urlcat/main.htm</A></P> <P>As far as QUIC, thats mostly relevant to Google Chrome browser, but not sure if you experience same issue with all the browsers or not.</P> Thu, 23 Mar 2023 19:46:13 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/175963#M32147 the_rock 2023-03-23T19:46:13Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/176027#M32161 <P>Are you able to provide a redacted log card for the allowed traffic/connection?</P> <P>Do you see any errors with HTTPS inspection, also to confirm is the trusted CA list up to date?</P> <P>Is OCSP traffic allowed?</P> Fri, 24 Mar 2023 08:45:51 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VSX-FW-Category-wise-blocking-was-not-working/m-p/176027#M32161 Chris_Atkinson 2023-03-24T08:45:51Z